Latest version: v3.3.0
CVE/PVE | Vulnerability ID | Advisory | Affected versions | Severity | Severity Score |
---|---|---|---|---|---|
CVE-2023-48054 | 65234 |
Missing SSL certificate validation in localstack v2.3.2 allows attack… |
|
HIGH | 7.4 |
CVE-2022-29599 | 52517 |
Localstack 1.0.2 removes its MAVEN dependency 'maven-shared-utils' in… |
|
CRITICAL | 9.8 |
CVE-2020-36518 | 52461 |
Localstack 1.0.2 updates its MAVEN dependency 'jackson-databind' to v… |
|
HIGH | 7.5 |
CVE-2021-44228 | 52463 |
Localstack 0.13.2 updates its MAVEN dependency 'log4j' to v2.17.0 to … |
|
CRITICAL | 10.0 |
CVE-2021-45046 | 52516 |
Localstack 0.13.2 updates its MAVEN dependency 'log4j' to v2.17.0 to … |
|
CRITICAL | 9.0 |
PVE-2021-42833 | 42833 |
Localstack 0.12.17 replaces Docker CLI commands with Docker Python SD… |
|
- | - |
PVE-2022-52464 | 52464 |
Localstack 0.12.17 replaces Docker CLI commands with Docker Python SD… |
|
- | - |
PVE-2021-42834 | 42834 |
Localstack 0.12.15 binds Edge Service to 127.0.0.1 by default instead… |
|
- | - |
PVE-2022-52465 | 52465 |
Localstack 0.12.14 fixes CORS setup to prevent CSRF attacks. https:/… |
|
- | - |
PVE-2021-41059 | 41059 |
Localstack 0.12.14 fixes CORS setup to prevent CSRF. https://github.… |
|
HIDDEN | X.Y |
CVE-2021-32090 | 42835 |
Localstack is vulnerable to CVE-2021-32090: The dashboard component o… |
|
CRITICAL | 9.8 |
PVE-2021-42837 | 42837 |
Localstack is vulnerable to Denial of Service via regular expressions… |
|
- | - |
CVE-2021-32091 | 42836 |
Localstack is vulnerable to CVE-2021-32091: A Cross-site scripting (X… |
|
MEDIUM | 6.1 |